Vulnerability Details : CVE-2017-0901
RubyGems version 2.6.12 and earlier fails to validate specification names, allowing a maliciously crafted gem to potentially overwrite any file on the filesystem.
Vulnerability category: Directory traversalInput validation
Exploit prediction scoring system (EPSS) score for CVE-2017-0901
0.88%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 81 %
Percentile, the proportion of vulnerabilities that are scored at or less